cURL / Mailing Lists / curl-library / Single Mail

curl-library

API to provide SNI hostname

From: Larry Campbell <lcampbel_at_akamai.com>
Date: Wed, 18 Feb 2015 11:25:43 -0500

A while ago there was a thread about adding an API to provide the hostname to be supplied in the TLS SNI; the thread was entitled "Patch: OpenSSL Server Name Indication value should match custom Host header" and can be found here in the archives:

http://curl.haxx.se/mail/lib-2010-11/index.html#19

It seems that nothing ever came of this. To recap, the requirement is an API (via curl_easy_setopt) to supply the hostname value to supply in the TLS SNI. This is required when the host in the URL is specified by IP address, so libcurl has no hostname to use. The original suggestion was to scrape it out of the Host: header, but this doesn't work for, say, FTP; also, it would be an incompatible change in behavior and therefore risky. So I think an explicit API would be better.

Has there been any further thought about this?

- lc

-------------------------------------------------------------------
List admin: http://cool.haxx.se/list/listinfo/curl-library
Etiquette: http://curl.haxx.se/mail/etiquette.html

application/pkcs7-signature attachment: smime.p7s

Received on 2015-02-18

This message: [ Message body ]
Next message: Valerio Borsò: "RE: Ntlm proxy and Http 407 error"
Previous message: Patrick Rael: "is CVE-2014-0139 fixed in libcurl-7.19.7-40.el6_6.4.x86_64"
Next in thread: Daniel Stenberg: "Re: API to provide SNI hostname"
Maybe reply: Daniel Stenberg: "Re: API to provide SNI hostname"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ] [ by messages with attachments ]